Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] Nokia VPN

To: [email protected]
Subject: [FW1] Nokia VPN
From: Camille Edge <[email protected]>
Date: Sat, 24 Feb 2001 19:41:00 -0500
Sender: [email protected]

Hi all

I'm hoping someone here can help me. I have a Nokia box that we had started the process of getting setup including giving IPs and such and setup a rule base. We even got to test it out a bit and were ready to bring it on line. The problem came up when our ISP stopped providing DSL service. Since that time we have gotten a new ISP and are trying to get the Nokia setup with all their IP information.

We can connect to it using hyperterminal and make changes using cpconfig. We can also connect using the web gui (Voyager) and make changes there as well. But in the new IP address info and such. However, when we try to connect to it via the policy editor gui to give it a new policy with new objects and such, the policy editor doesn't connect.

We have installed a new license with the new IP address. We cleared out the old info in $FWDIR/database/fwd.h & fwd.hosts so that the old IP aren't there when you run fw lichosts command. We did try running the fw unload of the policy, but still can't access the nokia via the policy editor gui to make any rule changes. We cleared out the $FWDIR/state directory as well of all the local.* files It can resolve it's name ok and there is nothing old still in the arp table. The etc/host file is correct. The DNS servers are also updated to the new ISP info. One thing I noticed was the $FWDIR/conf/sync.conf file was empty so we added the gui ip to it. The $FWDIR/conf/gui_clients file was also empty even though we had entered/applied/saved this info via voyager. Also ran fwm and added a user that can make changes since none were listed. The Nokia box has been rebooted several times. We have also run fwstop and fwstart as well.

Also if I look in the log files, the message "cannot locate my network object" keeps appearing. I'm thinking that even though we have made the Ip changes, there is still some place the info is stored. But for the life of me I can't find it. Any suggestions would be helpful. I did look at <http://www.phoneboy.com/fw1/faq/0178.html> which talks about this problem but doesn't tell how to change if the Gui isn't working. I also noticed when searching <http://msg.SecurePoint.com> that it suggested if you can't access it via the gui then "Accept FW1 Control connection" might be turned off. I looked all over via voyager and couldn't find this anywhere. Does anyone know if this might be the problem and where I check?

Sorry this is so long but I wanted to give as much info as I could that someone might ask. Any help you can give would be great. I've searched phoneboy, checkpoint, securepoint, yahoogroups, nokia and a few other websites I can't remember trying to find out more info, but nothing seems to work. I'm thinking the only thing left is to figure out how to blow away the all the config info and start again, but not sure how to do that. Of course that is my last resort so I thought I'd ask you guys first.

Thanks

cee


================================================================================
    To unsubscribe from this mailing list, please see the instructions at
              http://www.checkpoint.com/services/mailing.html
================================================================================

Follow-Ups:
- Re: [FW1] Nokia VPN
  - From: Carric Dooley <[email protected]>

Prev by Date: [FW1] Static NAT
Next by Date: Re: [FW1] Nokia VPN
Previous by thread: Re: [FW1] Static NAT
Next by thread: Re: [FW1] Nokia VPN
Index(es):
- Date
- Thread